Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the devops group with 6 updates #327

Closed
wants to merge 1 commit into from
Closed

build(deps): bump the devops group with 6 updates #327

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 7, 2023
edited
Loading

Bumps the devops group with 6 updates:

Package From To
actions/github-script 7.0.0 7.0.1
google-github-actions/auth 1.1.1 2.0.0
tj-actions/changed-files 40.1.1 40.2.1
marocchino/validate-dependabot 2.1.0 2.2.0
docker/metadata-action 5.0.0 5.3.0
docker/build-push-action 5.0.0 5.1.0

Updates actions/github-script from 7.0.0 to 7.0.1

Release notes

Sourced from actions/github-script's releases.

v7.0.1

What's Changed

Full Changelog: actions/github-script@v7.0.0...v7.0.1

Commits
  • 60a0d83 Merge pull request #440 from actions/joshmgross/v7.0.1
  • b7fb200 Update version to 7.0.1
  • 12e22ed Merge pull request #439 from actions/joshmgross/avoid-setting-base-url
  • d319f8f Avoid setting baseUrl to undefined when input is not provided
  • See full diff in compare view

Updates google-github-actions/auth from 1.1.1 to 2.0.0

Release notes

Sourced from google-github-actions/auth's releases.

v2.0.0

⚠️ This version requires Node 20 or later on the runner! If you are using GitHub-managed runners, no action is needed. If you are using self-hosted runners, make sure the system version of Node is version 20 or higher.

What's Changed

Full Changelog: google-github-actions/auth@v1...v2.0.0

v1.3.0

What's Changed

Full Changelog: google-github-actions/auth@v1...v1.3.0

v1.2.0

⚠️ This version requires Node 20 or later on the runner! If you are using GitHub-managed runners, no action is needed. If you are using self-hosted runners, make sure the system version of Node is version 20 or higher. Reverted based on community feedback.

What's Changed

New Contributors

Full Changelog: google-github-actions/auth@v1...v1.2.0

Commits

Updates tj-actions/changed-files from 40.1.1 to 40.2.1

Release notes

Sourced from tj-actions/changed-files's releases.

v40.2.1

What's Changed

Full Changelog: tj-actions/changed-files@v40...v40.2.1

v40.2.0

What's Changed

... (truncated)

Changelog

Sourced from tj-actions/changed-files's changelog.

40.2.1 - (2023-12-04)

➕ Add

  • Added missing changes and modified dist assets. (1c93849) - (GitHub Action)
  • Added missing changes and modified dist assets. (ee5ef75) - (GitHub Action)

➖ Remove

  • Deleted .github/workflows/greetings.yml (f91c9fe) - (Tonye Jack)

🔄 Update

  • Updated README.md (#1769)

Co-authored-by: jackton1 [email protected] (66b77cb) - (tj-actions[bot])

  • Update README.md (10bfa98) - (Tonye Jack)
  • Updated README.md (#1767)

Co-authored-by: jackton1 [email protected] Co-authored-by: Tonye Jack [email protected] (9e46b4f) - (tj-actions[bot])

  • Update README.md (3bf6172) - (Tonye Jack)
  • Updated README.md (#1755)

Co-authored-by: jackton1 [email protected] (48427af) - (tj-actions[bot])

  • Update README.md (742ed36) - (Tonye Jack)
  • Updated README.md (#1750)

Co-authored-by: repo-ranger[bot] (86cabf5) - (tj-actions[bot])

📝 Other

  • Update test.yml removing pull_request_review event (#1763) (af6bdde) - (Tonye Jack)
  • Remove usage of pull_request_target event from test.yml (#1758) (3ca6b80) - (Tonye Jack)

🧪 Testing

  • Verify bug writing outputs when files_yaml is used (#1762) (fc1fb2b) - (Tonye Jack)

⚙️ Miscellaneous Tasks

  • deps: Lock file maintenance (ba558db) - (renovate[bot])
  • deps: Update dependency @​types/node to v20.10.3 (bf19fa2) - (renovate[bot])
  • deps: Update dependency eslint-config-prettier to v9.1.0 (45581f0) - (renovate[bot])
  • deps: Update dependency eslint to v8.55.0 (9ebb48b) - (renovate[bot])
  • deps: Update dependency @​types/node to v20.10.2 (4e2dca3) - (renovate[bot])
  • deps: Update dependency @​types/node to v20.10.1 (883b4cc) - (renovate[bot])
  • deps: Lock file maintenance (42fe158) - (renovate[bot])

... (truncated)

Commits
  • 1c93849 Added missing changes and modified dist assets.
  • ba558db chore(deps): lock file maintenance
  • bf19fa2 chore(deps): update dependency @​types/node to v20.10.3
  • 66b77cb Updated README.md (#1769)
  • 10bfa98 Update README.md
  • 9e46b4f Updated README.md (#1767)
  • 3bf6172 Update README.md
  • 45581f0 chore(deps): update dependency eslint-config-prettier to v9.1.0
  • 9ebb48b chore(deps): update dependency eslint to v8.55.0
  • 4e2dca3 chore(deps): update dependency @​types/node to v20.10.2
  • Additional commits viewable in compare view

Updates marocchino/validate-dependabot from 2.1.0 to 2.2.0

Release notes

Sourced from marocchino/validate-dependabot's releases.

v2.2.0

Commits

Updates docker/metadata-action from 5.0.0 to 5.3.0

Release notes

Sourced from docker/metadata-action's releases.

v5.3.0

Full Changelog: docker/metadata-action@v5.2.0...v5.3.0

v5.2.0

Full Changelog: docker/metadata-action@v5.1.0...v5.2.0

v5.1.0

Full Changelog: docker/metadata-action@v5.0.0...v5.1.0

Commits
  • 31cebac Merge pull request #363 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 394bbab chore: update generated content
  • ee4c905 chore(deps): Bump @​docker/actions-toolkit from 0.14.0 to 0.15.0
  • e6428a5 Merge pull request #361 from crazy-max/custom-annotations
  • 26b4721 Merge pull request #359 from favonia/document-annotations
  • 352ce8b chore: update generated content
  • cb0becc custom annotations support
  • 91224bc docs(README): add a hint about multi-arch builds
  • f19c369 Merge pull request #358 from crazy-max/empty-images
  • 4066f0c chore: update generated content
  • Additional commits viewable in compare view

Updates docker/build-push-action from 5.0.0 to 5.1.0

Release notes

Sourced from docker/build-push-action's releases.

v5.1.0

Full Changelog: docker/build-push-action@v5.0.0...v5.1.0

Commits
  • 4a13e50 Merge pull request #1006 from docker/dependabot/npm_and_yarn/docker/actions-t...
  • 7416668 chore: update generated content
  • b4f76a5 chore(deps): Bump @​docker/actions-toolkit from 0.13.0 to 0.14.0
  • b7feb76 Merge pull request #1005 from crazy-max/ci-inspect
  • fae8018 ci: inspect sbom and provenance
  • b625868 Merge pull request #1004 from crazy-max/ci-update-buildx
  • 5193ef1 ci: update buildx to latest
  • d3afd77 Merge pull request #991 from docker/dependabot/npm_and_yarn/babel/traverse-7....
  • 7a786bb Merge pull request #992 from crazy-max/annotations
  • c66ae3a chore: update generated content
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the devops group with 6 updates
fe9fdd7 
Bumps the devops group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/github-script](https://github.com/actions/github-script) | `7.0.0` | `7.0.1` |
| [google-github-actions/auth](https://github.com/google-github-actions/auth) | `1.1.1` | `2.0.0` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `40.1.1` | `40.2.1` |
| [marocchino/validate-dependabot](https://github.com/marocchino/validate-dependabot) | `2.1.0` | `2.2.0` |
| [docker/metadata-action](https://github.com/docker/metadata-action) | `5.0.0` | `5.3.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action) | `5.0.0` | `5.1.0` |


Updates `actions/github-script` from 7.0.0 to 7.0.1
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](actions/github-script@v7.0.0...v7.0.1)

Updates `google-github-actions/auth` from 1.1.1 to 2.0.0
- [Release notes](https://github.com/google-github-actions/auth/releases)
- [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md)
- [Commits](google-github-actions/auth@v1.1.1...v2.0.0)

Updates `tj-actions/changed-files` from 40.1.1 to 40.2.1
- [Release notes](https://github.com/tj-actions/changed-files/releases)
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md)
- [Commits](tj-actions/changed-files@v40.1.1...v40.2.1)

Updates `marocchino/validate-dependabot` from 2.1.0 to 2.2.0
- [Release notes](https://github.com/marocchino/validate-dependabot/releases)
- [Commits](marocchino/validate-dependabot@v2.1.0...v2.2.0)

Updates `docker/metadata-action` from 5.0.0 to 5.3.0
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](docker/metadata-action@v5.0.0...v5.3.0)

Updates `docker/build-push-action` from 5.0.0 to 5.1.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@v5.0.0...v5.1.0)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: devops
- dependency-name: google-github-actions/auth
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: devops
- dependency-name: tj-actions/changed-files
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: devops
- dependency-name: marocchino/validate-dependabot
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: devops
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: devops
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: devops
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the C-trivial label Dec 7, 2023
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Dec 7, 2023

The following labels could not be found: A-devops, A-dependencies, P-Low :snowflake:.

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Dec 14, 2023

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 14, 2023
@dependabot dependabot bot deleted the dependabot/github_actions/devops-78fd2f6fb0 branch December 14, 2023 03:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
C-trivial
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants